FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The last vuln.xml file processed by FreshPorts is:

nothing found there

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML IDDescription
1020d401-6d2d-11eb-ab0b-001b217b3468Gitlab -- Multiple Vulnerabilities

Gitlab reports:

Improper Certificate Validation for Fortinet OTP

Denial of Service Attack on gitlab-shell

Resource exhaustion due to pending jobs

Confidential issue titles were exposed

Improper access control allowed demoted project members to access authored merge requests

Improper access control allowed unauthorized users to access analytic pages

Unauthenticated CI lint API may lead to information disclosure and SSRF

Prometheus integration in Gitlab may lead to SSRF


Discovery 2021-02-11
Entry 2021-02-12
gitlab-ce
ge 13.8.0 lt 13.8.4

ge 13.7.0 lt 13.7.7

ge 10.5 lt 13.6.7

https://about.gitlab.com/releases/2021/02/11/security-release-gitlab-13-8-4-released/